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All claims being allowable, PROSECUTION ON THE MERITS IS (OR REMAINS) CLOSED in this application. If not included 
herewith (or previously mailed), a Notice of Allowance (PTOL-85) or other appropriate communication will be mailed in due course. THIS 
NOTICE OF ALLOWABILITY IS NOT A GRANT OF PATENT RIGHTS. This application is subject to withdrawal from Issue at the initiative 
of the Office or upon petition by the applicant. See 37 CFR 1.313 and MPEP 1308. 

1 . 13 This communication is responsive to amendment filed 12/06/2005 . 
2. 13 The allowed claim(s) is/are 1-33 . 

3. □ Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or(f). 
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1. □ Certified copies of the priority documents have been received. 

2. □ Certified copies of the priority documents have been received in Application No. . 

3. □ Copies of the certified copies of the priority documents have been received in this national stage application from the 

International Bureau (PCT Rule 17.2(a)). 
* Certified copies not received: . 

Applicant has THREE MONTHS FROM THE "MAILING DATE" of this communication to file a reply complying with the requirements 
noted below. Failure to timely comply will result in ABANDONMENT of this application. 
THIS THREE-MONTH PERIOD IS NOT EXTENDABLE. 

4. □ A SUBSTITUTE OATH OR DECLARATION must be submitted. Note the attached EXAMINER'S AMENDMENT or NOTICE OF 

INFORMAL PATENT APPLICATION (PTO-152) which gives reason(s) why the oath or declaration is deficient. 

5. □ CORRECTED DRAWINGS ( as "replacement sheets") must be submitted. 

(a) □ including changes required by the Notice of Draftsperson's Patent Drawing Review ( PTO-948) attached 

1) □ hereto or 2) □ to Paper No./Mall Date . 

(b) □ including changes required by the attached Examiner's Amendment / Comment or in the Office action of 

Paper No./Mail Date . 

Identifying indicia such as the application number (see 37 CFR 1.84(c)) should be written on the drawings in the front (not the back) of 
each sheet. Replacement sheet(s) should be labeled as such in the header according to 37 CFR 1.121(d). 
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DETAILED ACTION 
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1 . Claims 1 -33 are allowed. 

2. The following is an examiner's statement of reasons for allowance: 

2.1 Referring to the rejection of claim 1 under 35 USC § 1 12, Applicant's arguments 
have been considered and found persuasive. Accordingly rejection is withdrawn. 

2.2 Referring to the instant claims, Edwards discloses a browser system (see title 
and Fig. 2). The operation of the Web browser (210) is prevented from accessing or 
damaging other compartments of the CMW machine (200) as a result of mandatory 
access control (MAC), which is configured appropriately (see abstract). 

Edwards teaches that the MAC policy uses labels that reflect information sensitivity, 
and maintains those labels for every process and file system object to prevent users not 
cleared for certain levels of classified information from accessing it (see, lines 0020). 
Edwards also teaches that the sensitivity labels are associated with every process and 
file system object, and are used as the primary basis for all MAC policy decisions. A 
sensitivity label represents the sensitivity of a process or a file system object and also 
the data each contains. If an application and the file it attempts to access have 
compatible sensitivity labels, the application can read, write, or possibly execute the file, 
and each new process typically inherits the sensitivity label of its parent (see lines 
0020). Sensitivity labels are prioritized for MAC in a way that determines how 
processes or objects having one sensitivity label can interact with processes or objects 
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having different sensitivity labels. The prioritization is defined internally of the operating 
system. The diagram in FIG. 3 represents the relationship between the parts of the 
system illustrated in FIG. 2. 

Edwars however, does not teach defining in a policy file arbitrary relationships 
between subjects and objects of different sensitivity labels. Edwards also does not 
teach that the operating system restricts the transfer of data between subjects and 
objects associated with inconsistent sensitivity labels except as permitted by the 
relationships defined in the policy file. Likewise, Edwards does not teach a 
communication section defining allowed communications channels between privileged 
and non-privileged processes that do not possess the same sensitivity labels. 
Further more, Edwards does not teach providing discrete access between arbitrary, 
incomparable sensitivity labels. 

2.3 Referring to the instant claims, Shurts discloses a secure multi-level system for 
executing stored procedures (see abstract). Shurts teaches that before any object is 
accessed in a MAC system, the subject's sensitivity label is compared with the object's 
sensitivity label to determine whether the subject is allowed to access the object in the 
manner requested (see column 1 , lines 60-64). Shurts also teaches that trusted stored 
procedure's write sensitivity label is dominated by an object's access sensitivity label, 
the trusted stored procedure can write to that object during execution. A subject's 
sensitivity labels need not dominate the trusted stored procedure's read and write labels 
in order for the trusted stored procedure to execute. In fact, a trusted stored procedure 
may access objects beyond the reach of the subject in normal operation (see column 3, 
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lines 45-53). However, the combination of Edwards and Shurts would not render the 
instant claims obvious, because Shurts does not teach or suggest any access between 
arbitrary incomparable sensitivity labels. 

3. In view of the reasons provided herein, claims 1-33 are in condition for allowance. 

Any comments considered necessary by applicant must be submitted no later 
than the payment of the issue fee and, to avoid processing delays, should preferably 
accompany the issue fee. Such submissions should be clearly labeled "Comments on 
Statement of Reasons for Allowance." 

Conclusion 

Any inquiry concerning this communication or earlier communications 
from the examiner should be directed to Grigory Gurshman whose telephone number is 
(571)272-3803. The examiner can normally be reached on 9 AM-5:30 PM. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gilberto Barron can be reached on (571)272-3799. The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 
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Examiner 
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